Virus msn message étranger
Fermé
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
-
30 déc. 2006 à 12:45
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 - 13 févr. 2007 à 23:13
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 - 13 févr. 2007 à 23:13
A voir également:
- Virus msn message étranger
- Recuperer message whatsapp - Guide
- Message d'absence thunderbird - Guide
- Msn - Télécharger - Messagerie
- Diff message ✓ - Forum Mobile
- Faux message virus iphone - Forum iPhone
44 réponses
Regis59
Messages postés
21143
Date d'inscription
mardi 27 juin 2006
Statut
Contributeur sécurité
Dernière intervention
22 juin 2016
1 320
30 déc. 2006 à 13:13
30 déc. 2006 à 13:13
Salut,
télécharge HijackThis ici:
http://telechargement.zebulon.fr/138-hijackthis-1991.html
Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif
Lance le puis:
clique sur "do a system scan and save logfile" (cf démo)
faire un copier coller du log entier sur le forum
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm
Bon courage
A+
télécharge HijackThis ici:
http://telechargement.zebulon.fr/138-hijackthis-1991.html
Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif
Lance le puis:
clique sur "do a system scan and save logfile" (cf démo)
faire un copier coller du log entier sur le forum
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm
Bon courage
A+
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
30 déc. 2006 à 13:29
30 déc. 2006 à 13:29
Logfile of HijackThis v1.99.1
Scan saved at 13:29:09, on 30/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
c:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\FBM Software\ZeroSpyware\ZeroSpyware.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\keyhook.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Player Video TF1\tf1.exe
C:\WINDOWS\wt\updater\wcmdmgr.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft Money\System\mnyexpr.exe
C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\windows\kernel.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\msnmsgr2.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Boonty\BoontyBox\BoontyBoxEngine.exe
C:\WINDOWS\system32\wuauclt.exe
C:\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - c:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [wcmdmgr] C:\WINDOWS\wt\updater\wcmdmgrl.exe -launch
O4 - HKLM\..\Run: [Traybar] C:\WINDOWS\lsass.exe
O4 - HKLM\..\Run: [tf1] C:\Program Files\Player Video TF1\tf1.exe
O4 - HKLM\..\Run: [ZSScheduler] rundll32.exe "C:\Program Files\FBM Software\ZeroSpyware\zsscheduler.dll", runScheduler C:\Program Files\FBM Software\ZeroSpyware\
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Windows Messenger] C:\windows\msnmsgr2.exe
O4 - HKCU\..\Run: [Logon de rede] C:\windows\kernel.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: BoontyBox neuf telecom.lnk = C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Kodak software updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://mm.tf1.fr/superdistribution/installer2.cab
O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://mymyt19.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - http://webgames.d.tmsrv.com/c=36050d3f8c198c376eea2a2703ecf227/aff=t_25oa_frca_wg/p/release/playfirst/wg_dinerdash2/dinerdash2/DinerDash2.1.0.0.48.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoways.com/clients/ImageUploader3.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/diner_dash/DinerDash.1.0.0.80.cab
O16 - DPF: {E1342154-4889-42B5-BEF6-19237577048F} (OberongamesLoader Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/rocket_mania/Oberongamesloader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2FBACF3D-7140-49B4-83BB-8AE7DB1E8F94}: NameServer = 84.103.237.144 86.64.145.144
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINDOWS\system32\drivers\KodakCCS.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SAVScan - Symantec Corporation - c:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
Scan saved at 13:29:09, on 30/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
c:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\FBM Software\ZeroSpyware\ZeroSpyware.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\keyhook.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Player Video TF1\tf1.exe
C:\WINDOWS\wt\updater\wcmdmgr.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft Money\System\mnyexpr.exe
C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\windows\kernel.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\msnmsgr2.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Boonty\BoontyBox\BoontyBoxEngine.exe
C:\WINDOWS\system32\wuauclt.exe
C:\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - c:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [wcmdmgr] C:\WINDOWS\wt\updater\wcmdmgrl.exe -launch
O4 - HKLM\..\Run: [Traybar] C:\WINDOWS\lsass.exe
O4 - HKLM\..\Run: [tf1] C:\Program Files\Player Video TF1\tf1.exe
O4 - HKLM\..\Run: [ZSScheduler] rundll32.exe "C:\Program Files\FBM Software\ZeroSpyware\zsscheduler.dll", runScheduler C:\Program Files\FBM Software\ZeroSpyware\
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Windows Messenger] C:\windows\msnmsgr2.exe
O4 - HKCU\..\Run: [Logon de rede] C:\windows\kernel.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: BoontyBox neuf telecom.lnk = C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Kodak software updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://mm.tf1.fr/superdistribution/installer2.cab
O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://mymyt19.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - http://webgames.d.tmsrv.com/c=36050d3f8c198c376eea2a2703ecf227/aff=t_25oa_frca_wg/p/release/playfirst/wg_dinerdash2/dinerdash2/DinerDash2.1.0.0.48.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoways.com/clients/ImageUploader3.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/diner_dash/DinerDash.1.0.0.80.cab
O16 - DPF: {E1342154-4889-42B5-BEF6-19237577048F} (OberongamesLoader Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/rocket_mania/Oberongamesloader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2FBACF3D-7140-49B4-83BB-8AE7DB1E8F94}: NameServer = 84.103.237.144 86.64.145.144
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINDOWS\system32\drivers\KodakCCS.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SAVScan - Symantec Corporation - c:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
Regis59
Messages postés
21143
Date d'inscription
mardi 27 juin 2006
Statut
Contributeur sécurité
Dernière intervention
22 juin 2016
1 320
30 déc. 2006 à 13:46
30 déc. 2006 à 13:46
Salut,
Scan ton pc avec ceci et copie colle le rapport stp:
AVG Anti-Spyware :
https://www.malekal.com/avg-antivirus-free-antivirus-gratuit-pour-proteger-son-pc-des-virus/
A+
Scan ton pc avec ceci et copie colle le rapport stp:
AVG Anti-Spyware :
https://www.malekal.com/avg-antivirus-free-antivirus-gratuit-pour-proteger-son-pc-des-virus/
A+
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
30 déc. 2006 à 17:30
30 déc. 2006 à 17:30
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 17:27:24 30/12/2006
+ Résultat de l'analyse:
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP624\A0052616.dll -> Adware.SideFind : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050266.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050267.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050268.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050276.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050277.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050278.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050279.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050280.exe -> Adware.Trymedia : Aucune action entreprise.
C:\WINDOWS\wt\backup\1.6.0.037\wcmdmgr.exe -> Adware.Wildtangent : Aucune action entreprise.
C:\Program Files\Montorgueil\CineVoyeur\CineVoyeur.exe -> Dialer.Agent.aq : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP624\A0052615.dll -> Downloader.Dyfuca.dt : Aucune action entreprise.
C:\data -> Downloader.IstBar.nh : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\my.class-204956be-45c27f1c.class -> Downloader.Small.aaq : Aucune action entreprise.
C:\bla.exe -> Downloader.Small.aaq : Aucune action entreprise.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\B0BE4ZTL\svcpool[1].gif -> Logger.Banker.axo : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP627\A0052823.dll -> Logger.Banker.axo : Aucune action entreprise.
C:\WINDOWS\__delete_on_reboot__s_v_c_p_o_o_l_._d_l_l_ -> Logger.Banker.axo : Aucune action entreprise.
C:\Program Files\eMule\Incoming\MSN Messenger 7 203 Winks 76 Moods 143 Smiles + MCO Installer by Captain Cook\mspass.zip/mspass.exe -> Not-A-Virus.PSWTool.Win32.Messen.103 : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP594\A0048278.exe -> Not-A-Virus.PSWTool.Win32.Messen.103 : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@247realmedia[1].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@adbrite[2].txt -> TrackingCookie.Adbrite : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@adtech[2].txt -> TrackingCookie.Adtech : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@advertising[1].txt -> TrackingCookie.Advertising : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@atdmt[2].txt -> TrackingCookie.Atdmt : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.belstat[3].txt -> TrackingCookie.Belstat : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@bluestreak[2].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@promo.casinotropez[1].txt -> TrackingCookie.Casinotropez : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@cz11.clickzs[2].txt -> TrackingCookie.Clickzs : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@cz3.clickzs[1].txt -> TrackingCookie.Clickzs : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@vip.clickzs[2].txt -> TrackingCookie.Clickzs : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@vip2.clickzs[2].txt -> TrackingCookie.Clickzs : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@estat[1].txt -> TrackingCookie.Estat : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ads.gamershell[1].txt -> TrackingCookie.Gamershell : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@gamershell[1].txt -> TrackingCookie.Gamershell : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.gamershell[1].txt -> TrackingCookie.Gamershell : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ivwbox[2].txt -> TrackingCookie.Ivwbox : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@image.masterstats[1].txt -> TrackingCookie.Masterstats : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ads.planetactive[2].txt -> TrackingCookie.Planetactive : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@tacoda[1].txt -> TrackingCookie.Tacoda : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@valueclick[1].txt -> TrackingCookie.Valueclick : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@weborama[1].txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP624\A0052614.exe -> Trojan.Small.cy : Aucune action entreprise.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\31PSZN5B\XSecDLL[1].gif -> Worm.Banwor.nc : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP627\A0052882.dll -> Worm.Banwor.nc : Aucune action entreprise.
C:\WINDOWS\__delete_on_reboot__X_S_e_c_D_l_l_._d_l_l_ -> Worm.Banwor.nc : Aucune action entreprise.
[1444] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[3040] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[3268] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[368] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[3824] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[3920] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[3996] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[5244] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[5692] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[5972] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem653_norton$20internet$20security_7.0.3_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem653_norton$20internet$20security_7.0.3_french\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem653_norton$20internet$20security_7.0.3_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem653_norton$20internet$20security_7.0.3_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUp
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 17:27:24 30/12/2006
+ Résultat de l'analyse:
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP624\A0052616.dll -> Adware.SideFind : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050266.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050267.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050268.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050276.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050277.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050278.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050279.exe -> Adware.Trymedia : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP606\A0050280.exe -> Adware.Trymedia : Aucune action entreprise.
C:\WINDOWS\wt\backup\1.6.0.037\wcmdmgr.exe -> Adware.Wildtangent : Aucune action entreprise.
C:\Program Files\Montorgueil\CineVoyeur\CineVoyeur.exe -> Dialer.Agent.aq : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP624\A0052615.dll -> Downloader.Dyfuca.dt : Aucune action entreprise.
C:\data -> Downloader.IstBar.nh : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\my.class-204956be-45c27f1c.class -> Downloader.Small.aaq : Aucune action entreprise.
C:\bla.exe -> Downloader.Small.aaq : Aucune action entreprise.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\B0BE4ZTL\svcpool[1].gif -> Logger.Banker.axo : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP627\A0052823.dll -> Logger.Banker.axo : Aucune action entreprise.
C:\WINDOWS\__delete_on_reboot__s_v_c_p_o_o_l_._d_l_l_ -> Logger.Banker.axo : Aucune action entreprise.
C:\Program Files\eMule\Incoming\MSN Messenger 7 203 Winks 76 Moods 143 Smiles + MCO Installer by Captain Cook\mspass.zip/mspass.exe -> Not-A-Virus.PSWTool.Win32.Messen.103 : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP594\A0048278.exe -> Not-A-Virus.PSWTool.Win32.Messen.103 : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@247realmedia[1].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@adbrite[2].txt -> TrackingCookie.Adbrite : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@adtech[2].txt -> TrackingCookie.Adtech : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@advertising[1].txt -> TrackingCookie.Advertising : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@atdmt[2].txt -> TrackingCookie.Atdmt : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.belstat[3].txt -> TrackingCookie.Belstat : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@bluestreak[2].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@promo.casinotropez[1].txt -> TrackingCookie.Casinotropez : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@cz11.clickzs[2].txt -> TrackingCookie.Clickzs : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@cz3.clickzs[1].txt -> TrackingCookie.Clickzs : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@vip.clickzs[2].txt -> TrackingCookie.Clickzs : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@vip2.clickzs[2].txt -> TrackingCookie.Clickzs : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@estat[1].txt -> TrackingCookie.Estat : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ads.gamershell[1].txt -> TrackingCookie.Gamershell : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@gamershell[1].txt -> TrackingCookie.Gamershell : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.gamershell[1].txt -> TrackingCookie.Gamershell : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ivwbox[2].txt -> TrackingCookie.Ivwbox : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@image.masterstats[1].txt -> TrackingCookie.Masterstats : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ads.planetactive[2].txt -> TrackingCookie.Planetactive : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@tacoda[1].txt -> TrackingCookie.Tacoda : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@valueclick[1].txt -> TrackingCookie.Valueclick : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@weborama[1].txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP624\A0052614.exe -> Trojan.Small.cy : Aucune action entreprise.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\31PSZN5B\XSecDLL[1].gif -> Worm.Banwor.nc : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP627\A0052882.dll -> Worm.Banwor.nc : Aucune action entreprise.
C:\WINDOWS\__delete_on_reboot__X_S_e_c_D_l_l_._d_l_l_ -> Worm.Banwor.nc : Aucune action entreprise.
[1444] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[3040] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[3268] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[368] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[3824] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[3920] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[3996] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[5244] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[5692] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
[5972] C:\windows\XSecDll.dll -> Worm.Banwor.nc : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_10009_1dffb\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3c0002_2418e7\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Motive\Acme\plugin\downloads\packages\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2214_navnt$20noscrblock_10.00.13_french\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2215_navnt$20noscrblock_10.00.13_french\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2612_common$20client$20core_2.1.1_french\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2919_symnet$20consumer_5.2.1_english\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3121_common$20client$20ccproxy_2.1.1_french\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3641_norton$20internet$20security$20other_1.0_english\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3819_norton$20wmi$20core_1.0_french\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3842_norton$20wmi$20shared_1.0_french\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3865_norton$20wmi$20user$20interface_1.0_french\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem4204_norton$20internet$20security$20ids$20signatures_2.0_english\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem653_norton$20internet$20security_7.0.3_french\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem653_norton$20internet$20security_7.0.3_french\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem653_norton$20internet$20security_7.0.3_french\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem653_norton$20internet$20security_7.0.3_french\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUp
Regis59
Messages postés
21143
Date d'inscription
mardi 27 juin 2006
Statut
Contributeur sécurité
Dernière intervention
22 juin 2016
1 320
30 déc. 2006 à 19:12
30 déc. 2006 à 19:12
Re,
tu es TRES infecté !
Choisis l option supprimer a la fin du scan de AVG AS
Ensuite montre moi le rapport stp
A+
PS: Evite les sites X...
tu es TRES infecté !
Choisis l option supprimer a la fin du scan de AVG AS
Ensuite montre moi le rapport stp
A+
PS: Evite les sites X...
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
31 déc. 2006 à 12:53
31 déc. 2006 à 12:53
J'ai fait option "supprimer" et j'ai refait un scan (je suis pas sûr d'avoir bien compris si c'est sa qu'il fallait faire...) donc voici le rapport du secong scan... et je ne fréquente pas les sites X donc ... par contre il ya qulques semaine je me suis fais pirater mon compte Msn.
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 12:44:51 31/12/2006
+ Résultat de l'analyse:
C:\WINDOWS\wt\backup\1.6.0.037\wcmdmgr.exe -> Adware.Wildtangent : Aucune action entreprise.
C:\WINDOWS\__delete_on_reboot__s_v_c_p_o_o_l_._d_l_l_ -> Logger.Banker.axo : Aucune action entreprise.
C:\WINDOWS\__delete_on_reboot__X_S_e_c_D_l_l_._d_l_l_ -> Worm.Banwor.nc : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\S-1-5-18\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
Fin du rapport
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 12:44:51 31/12/2006
+ Résultat de l'analyse:
C:\WINDOWS\wt\backup\1.6.0.037\wcmdmgr.exe -> Adware.Wildtangent : Aucune action entreprise.
C:\WINDOWS\__delete_on_reboot__s_v_c_p_o_o_l_._d_l_l_ -> Logger.Banker.axo : Aucune action entreprise.
C:\WINDOWS\__delete_on_reboot__X_S_e_c_D_l_l_._d_l_l_ -> Worm.Banwor.nc : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Installations\{BB7815A3-BABE-4710-A530-8242593E1019}\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\Microsoft.NET\Framework\VJSharp\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\S-1-5-18\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\SoftwareDistribution\Download\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\GAC\VJSharpCodeProvider\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_765165f5\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\ime\shared\res\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Harry Potter.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHWWBF4\plugin\bin\jsharpde\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Harry Potter.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Harry Potter.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\ICQ 4 Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\ICQ 4 Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\ICQ 4 Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Kazaa Lite.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Kazaa Lite.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Kazaa Lite.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\WinRAR.v.3.2.and.key.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\WinRAR.v.3.2.and.key.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\WinRAR.v.3.2.and.key.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Winamp 5.0 (en) Crack.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Winamp 5.0 (en) Crack.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Winamp 5.0 (en) Crack.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Winamp 5.0 (en).ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Winamp 5.0 (en).com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\Winamp 5.0 (en).exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\index.ShareReactor.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\index.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\WINDOWS\system32\config\systemprofile\Application Data\Symantec\Shared\index.exe -> Worm.Mydoom.l : Aucune action entreprise.
Fin du rapport
Regis59
Messages postés
21143
Date d'inscription
mardi 27 juin 2006
Statut
Contributeur sécurité
Dernière intervention
22 juin 2016
1 320
31 déc. 2006 à 13:06
31 déc. 2006 à 13:06
Salut
Tous tes cracks sont infectés !
A la fin du scan de AVG, tu as un tableau avec marqué aucune action. Clik dessu et selectionne supprimer.
Ensuite refais un scan
A+
Tous tes cracks sont infectés !
A la fin du scan de AVG, tu as un tableau avec marqué aucune action. Clik dessu et selectionne supprimer.
Ensuite refais un scan
A+
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
31 déc. 2006 à 16:03
31 déc. 2006 à 16:03
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 16:00:31 31/12/2006
+ Résultat de l'analyse:
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057553.exe -> Dialer.Agent.aq : Aucune action entreprise.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\31PSZN5B\svcpool[1].gif -> Logger.Banker.axo : Aucune action entreprise.
C:\WINDOWS\svcpool.dll -> Logger.Banker.axo : Aucune action entreprise.
C:\Program Files\eMule\Incoming\MSN Messenger 7 203 Winks 76 Moods 143 Smiles + MCO Installer by Captain Cook\mspass.zip/mspass.exe -> Not-A-Virus.PSWTool.Win32.Messen.103 : Aucune action entreprise.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\B0BE4ZTL\XSecDLL[1].gif -> Worm.Banwor.nc : Aucune action entreprise.
C:\WINDOWS\__delete_on_reboot__X_S_e_c_D_l_l_._d_l_l_ -> Worm.Banwor.nc : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057533.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057534.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057535.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057536.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057537.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057538.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057539.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057540.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057541.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057542.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057543.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057544.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057545.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057546.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057547.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057548.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057549.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057550.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057551.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057552.exe -> Worm.Mydoom.l : Aucune action entreprise.
Fin du rapport
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 16:00:31 31/12/2006
+ Résultat de l'analyse:
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057553.exe -> Dialer.Agent.aq : Aucune action entreprise.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\31PSZN5B\svcpool[1].gif -> Logger.Banker.axo : Aucune action entreprise.
C:\WINDOWS\svcpool.dll -> Logger.Banker.axo : Aucune action entreprise.
C:\Program Files\eMule\Incoming\MSN Messenger 7 203 Winks 76 Moods 143 Smiles + MCO Installer by Captain Cook\mspass.zip/mspass.exe -> Not-A-Virus.PSWTool.Win32.Messen.103 : Aucune action entreprise.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\B0BE4ZTL\XSecDLL[1].gif -> Worm.Banwor.nc : Aucune action entreprise.
C:\WINDOWS\__delete_on_reboot__X_S_e_c_D_l_l_._d_l_l_ -> Worm.Banwor.nc : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057533.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057534.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057535.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057536.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057537.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057538.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057539.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057540.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057541.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057542.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057543.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057544.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057545.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057546.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057547.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057548.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057549.exe -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057550.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057551.com -> Worm.Mydoom.l : Aucune action entreprise.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057552.exe -> Worm.Mydoom.l : Aucune action entreprise.
Fin du rapport
Regis59
Messages postés
21143
Date d'inscription
mardi 27 juin 2006
Statut
Contributeur sécurité
Dernière intervention
22 juin 2016
1 320
31 déc. 2006 à 17:39
31 déc. 2006 à 17:39
Re,
Est ce que tu as tout supprimé?
a+
Est ce que tu as tout supprimé?
a+
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
31 déc. 2006 à 17:52
31 déc. 2006 à 17:52
oui j'ai tout supprimé mais à chaque fois c'est les mêmes qui reviennent...
A +
A +
Regis59
Messages postés
21143
Date d'inscription
mardi 27 juin 2006
Statut
Contributeur sécurité
Dernière intervention
22 juin 2016
1 320
31 déc. 2006 à 18:03
31 déc. 2006 à 18:03
D'acocrd, maintenant, remet moi un hijack this stp
a+
a+
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
31 déc. 2006 à 18:10
31 déc. 2006 à 18:10
Logfile of HijackThis v1.99.1
Scan saved at 18:10:03, on 31/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
c:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\system32\keyhook.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Player Video TF1\tf1.exe
C:\WINDOWS\wt\updater\wcmdmgr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft Money\System\mnyexpr.exe
C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
C:\WINDOWS\kernel.exe
C:\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - c:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [wcmdmgr] C:\WINDOWS\wt\updater\wcmdmgrl.exe -launch
O4 - HKLM\..\Run: [Traybar] C:\WINDOWS\lsass.exe
O4 - HKLM\..\Run: [tf1] C:\Program Files\Player Video TF1\tf1.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Windows Messenger] C:\windows\msnmsgr2.exe
O4 - HKCU\..\Run: [Logon de rede] C:\windows\kernel.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: BoontyBox neuf telecom.lnk = C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Kodak software updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://mm.tf1.fr/superdistribution/installer2.cab
O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://mymyt19.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - http://webgames.d.tmsrv.com/c=36050d3f8c198c376eea2a2703ecf227/aff=t_25oa_frca_wg/p/release/playfirst/wg_dinerdash2/dinerdash2/DinerDash2.1.0.0.48.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoways.com/clients/ImageUploader3.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/diner_dash/DinerDash.1.0.0.80.cab
O16 - DPF: {E1342154-4889-42B5-BEF6-19237577048F} (OberongamesLoader Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/rocket_mania/Oberongamesloader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2FBACF3D-7140-49B4-83BB-8AE7DB1E8F94}: NameServer = 84.103.237.144 86.64.145.144
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINDOWS\system32\drivers\KodakCCS.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SAVScan - Symantec Corporation - c:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
Scan saved at 18:10:03, on 31/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
c:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\system32\keyhook.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Player Video TF1\tf1.exe
C:\WINDOWS\wt\updater\wcmdmgr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft Money\System\mnyexpr.exe
C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
C:\WINDOWS\kernel.exe
C:\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - c:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [wcmdmgr] C:\WINDOWS\wt\updater\wcmdmgrl.exe -launch
O4 - HKLM\..\Run: [Traybar] C:\WINDOWS\lsass.exe
O4 - HKLM\..\Run: [tf1] C:\Program Files\Player Video TF1\tf1.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Windows Messenger] C:\windows\msnmsgr2.exe
O4 - HKCU\..\Run: [Logon de rede] C:\windows\kernel.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: BoontyBox neuf telecom.lnk = C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Kodak software updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://mm.tf1.fr/superdistribution/installer2.cab
O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://mymyt19.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - http://webgames.d.tmsrv.com/c=36050d3f8c198c376eea2a2703ecf227/aff=t_25oa_frca_wg/p/release/playfirst/wg_dinerdash2/dinerdash2/DinerDash2.1.0.0.48.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoways.com/clients/ImageUploader3.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/diner_dash/DinerDash.1.0.0.80.cab
O16 - DPF: {E1342154-4889-42B5-BEF6-19237577048F} (OberongamesLoader Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/rocket_mania/Oberongamesloader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2FBACF3D-7140-49B4-83BB-8AE7DB1E8F94}: NameServer = 84.103.237.144 86.64.145.144
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINDOWS\system32\drivers\KodakCCS.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SAVScan - Symantec Corporation - c:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
Regis59
Messages postés
21143
Date d'inscription
mardi 27 juin 2006
Statut
Contributeur sécurité
Dernière intervention
22 juin 2016
1 320
31 déc. 2006 à 18:52
31 déc. 2006 à 18:52
Bonjour,
Méthode à suivre dans l'ordre...
----------------------------------------------------------------------------
¤Télécharge ces logiciels mais que tu n‘utilises pas tout de suite:
1/
Spybot S&D 1.4
https://www.safer-networking.org/
Démo d’utilisation (merci à Balltrap34 pour cette réalisation).
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
2/
Ad-Aware SE 1.06
https://www.adaware.com/
-Une aide:
http://usa.lucretius-ada.com/zcvisitor/8782d344-4821-11ea-83ce-0a2cdf2c6be7?campaignid=0d1dff40-82d7-11e9-9533-0a157bfa6bfc
- installe le patch français, tu pourras le trouver ici:
http://download.lavasoft.de.edgesuite.net/public/pllangs.exe
et une petite vidéo d'utilisation ici:(merci à Moe31 pour cette réalisation).
http://pageperso.aol.fr/balltrap34/adawrevid.asf
3/ AVG Anti-Spyware :
https://www.malekal.com/avg-antivirus-free-antivirus-gratuit-pour-proteger-son-pc-des-virus/
4/ Ccleaner :
https://www.malekal.com/tutoriel-ccleaner/
----------------------------------------------------------------------------
¤Affiche tous les fichiers et dossiers :
Clique sur démarrer/panneau de configuration/outil/option des dossiers/affichage
Coche « afficher les fichiers et dossiers cachés »
Décoche la case "Masquer les fichiers protégés du système d'exploitation (recommandé)"
Décoche « masquer les extensions dont le type est connu »
Puis fais «Ok» pour valider les changements.
Et appliquer !
----------------------------------------------------------------------------
¤Relance HijackThis, coche les cases devant ces lignes et ensuite clique sur fix checked :
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [Traybar] C:\WINDOWS\lsass.exe
O4 - HKCU\..\Run: [Logon de rede] C:\windows\kernel.exe
----------------------------------------------------------------------------
¤Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
(Si F8 ne marche pas utilise la touche F5).
----------------------------------------------------------------------------
¤Recherche et supprime ceci:
attention seulement les fichiers (si présents).
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\lsass.exe
C:\windows\kernel.exe
----------------------------------------------------------------------------
¤ Lancer et exécuter AVG A-S pour un scan complet et copier/coller le rapport en forum.
----------------------------------------------------------------------------
¤ Passe Ad-Aware et supprime tout ce qu’il trouve + supprime les quarantaines…
----------------------------------------------------------------------------
¤ Passe Spybot et corrige tout ce qu’il trouve + vaccine + supprime les quarantaines…
-------------------------------------------------------------------------------------------
¤ Lance CCleaner comme sur le tuto fournit au début de la procédure.
----------------------------------------------------------------------------
¤ Vide ta Corbeille.
----------------------------------------------------------------------------
¤ Redémarre en mode normal, relance Hijackthis et copie/colle un nouveau rapport sur le forum.
Précise tes soucis s’il en reste....
Tiens-moi au courant
A+
Méthode à suivre dans l'ordre...
----------------------------------------------------------------------------
¤Télécharge ces logiciels mais que tu n‘utilises pas tout de suite:
1/
Spybot S&D 1.4
https://www.safer-networking.org/
Démo d’utilisation (merci à Balltrap34 pour cette réalisation).
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
2/
Ad-Aware SE 1.06
https://www.adaware.com/
-Une aide:
http://usa.lucretius-ada.com/zcvisitor/8782d344-4821-11ea-83ce-0a2cdf2c6be7?campaignid=0d1dff40-82d7-11e9-9533-0a157bfa6bfc
- installe le patch français, tu pourras le trouver ici:
http://download.lavasoft.de.edgesuite.net/public/pllangs.exe
et une petite vidéo d'utilisation ici:(merci à Moe31 pour cette réalisation).
http://pageperso.aol.fr/balltrap34/adawrevid.asf
3/ AVG Anti-Spyware :
https://www.malekal.com/avg-antivirus-free-antivirus-gratuit-pour-proteger-son-pc-des-virus/
4/ Ccleaner :
https://www.malekal.com/tutoriel-ccleaner/
----------------------------------------------------------------------------
¤Affiche tous les fichiers et dossiers :
Clique sur démarrer/panneau de configuration/outil/option des dossiers/affichage
Coche « afficher les fichiers et dossiers cachés »
Décoche la case "Masquer les fichiers protégés du système d'exploitation (recommandé)"
Décoche « masquer les extensions dont le type est connu »
Puis fais «Ok» pour valider les changements.
Et appliquer !
----------------------------------------------------------------------------
¤Relance HijackThis, coche les cases devant ces lignes et ensuite clique sur fix checked :
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [Traybar] C:\WINDOWS\lsass.exe
O4 - HKCU\..\Run: [Logon de rede] C:\windows\kernel.exe
----------------------------------------------------------------------------
¤Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
(Si F8 ne marche pas utilise la touche F5).
----------------------------------------------------------------------------
¤Recherche et supprime ceci:
attention seulement les fichiers (si présents).
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\lsass.exe
C:\windows\kernel.exe
----------------------------------------------------------------------------
¤ Lancer et exécuter AVG A-S pour un scan complet et copier/coller le rapport en forum.
----------------------------------------------------------------------------
¤ Passe Ad-Aware et supprime tout ce qu’il trouve + supprime les quarantaines…
----------------------------------------------------------------------------
¤ Passe Spybot et corrige tout ce qu’il trouve + vaccine + supprime les quarantaines…
-------------------------------------------------------------------------------------------
¤ Lance CCleaner comme sur le tuto fournit au début de la procédure.
----------------------------------------------------------------------------
¤ Vide ta Corbeille.
----------------------------------------------------------------------------
¤ Redémarre en mode normal, relance Hijackthis et copie/colle un nouveau rapport sur le forum.
Précise tes soucis s’il en reste....
Tiens-moi au courant
A+
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
1 janv. 2007 à 15:23
1 janv. 2007 à 15:23
ces étapes elles risquent rien pour mes documents (photos, doc word...) ?
comment je fais pour repasser en mode normal ?
comment je fais pour repasser en mode normal ?
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
1 janv. 2007 à 19:05
1 janv. 2007 à 19:05
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 18:05:54 01/01/2007
+ Résultat de l'analyse:
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\SVZ9EARN\svcpool[1].gif -> Logger.Banker.axo : Nettoyé.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057634.dll -> Logger.Banker.axo : Nettoyé.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057686.dll -> Logger.Banker.axo : Nettoyé.
C:\Program Files\eMule\Incoming\MSN Messenger 7 203 Winks 76 Moods 143 Smiles + MCO Installer by Captain Cook\mspass.zip/mspass.exe -> Not-A-Virus.PSWTool.Win32.Messen.103 : Nettoyé.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\B0BE4ZTL\XSecDLL[1].gif -> Worm.Banwor.nc : Nettoyé.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057633.DLL -> Worm.Banwor.nc : Nettoyé.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057687.DLL -> Worm.Banwor.nc : Nettoyé.
Fin du rapport
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 18:05:54 01/01/2007
+ Résultat de l'analyse:
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\SVZ9EARN\svcpool[1].gif -> Logger.Banker.axo : Nettoyé.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057634.dll -> Logger.Banker.axo : Nettoyé.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057686.dll -> Logger.Banker.axo : Nettoyé.
C:\Program Files\eMule\Incoming\MSN Messenger 7 203 Winks 76 Moods 143 Smiles + MCO Installer by Captain Cook\mspass.zip/mspass.exe -> Not-A-Virus.PSWTool.Win32.Messen.103 : Nettoyé.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\B0BE4ZTL\XSecDLL[1].gif -> Worm.Banwor.nc : Nettoyé.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057633.DLL -> Worm.Banwor.nc : Nettoyé.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP628\A0057687.DLL -> Worm.Banwor.nc : Nettoyé.
Fin du rapport
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
1 janv. 2007 à 19:06
1 janv. 2007 à 19:06
Logfile of HijackThis v1.99.1
Scan saved at 19:06:02, on 01/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
c:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\keyhook.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Player Video TF1\tf1.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft Money\System\mnyexpr.exe
C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\windows\msnmsgr2.exe
C:\Program Files\eMule\emule.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\kernel.exe
C:\WINDOWS\system32\cmd.exe
c:\windows\svcupdate.exe
C:\WINDOWS\system32\cidaemon.exe
C:\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - c:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [tf1] C:\Program Files\Player Video TF1\tf1.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Windows Messenger] C:\windows\msnmsgr2.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: BoontyBox neuf telecom.lnk = C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Kodak software updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://mm.tf1.fr/superdistribution/installer2.cab
O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://mymyt19.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - http://webgames.d.tmsrv.com/c=36050d3f8c198c376eea2a2703ecf227/aff=t_25oa_frca_wg/p/release/playfirst/wg_dinerdash2/dinerdash2/DinerDash2.1.0.0.48.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoways.com/clients/ImageUploader3.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/diner_dash/DinerDash.1.0.0.80.cab
O16 - DPF: {E1342154-4889-42B5-BEF6-19237577048F} (OberongamesLoader Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/rocket_mania/Oberongamesloader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2FBACF3D-7140-49B4-83BB-8AE7DB1E8F94}: NameServer = 84.103.237.143 86.64.145.143
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINDOWS\system32\drivers\KodakCCS.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SAVScan - Symantec Corporation - c:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
Scan saved at 19:06:02, on 01/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
c:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\keyhook.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Player Video TF1\tf1.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft Money\System\mnyexpr.exe
C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\windows\msnmsgr2.exe
C:\Program Files\eMule\emule.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\kernel.exe
C:\WINDOWS\system32\cmd.exe
c:\windows\svcupdate.exe
C:\WINDOWS\system32\cidaemon.exe
C:\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - c:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [tf1] C:\Program Files\Player Video TF1\tf1.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Windows Messenger] C:\windows\msnmsgr2.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: BoontyBox neuf telecom.lnk = C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Kodak software updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://mm.tf1.fr/superdistribution/installer2.cab
O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://mymyt19.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - http://webgames.d.tmsrv.com/c=36050d3f8c198c376eea2a2703ecf227/aff=t_25oa_frca_wg/p/release/playfirst/wg_dinerdash2/dinerdash2/DinerDash2.1.0.0.48.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoways.com/clients/ImageUploader3.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/diner_dash/DinerDash.1.0.0.80.cab
O16 - DPF: {E1342154-4889-42B5-BEF6-19237577048F} (OberongamesLoader Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/rocket_mania/Oberongamesloader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2FBACF3D-7140-49B4-83BB-8AE7DB1E8F94}: NameServer = 84.103.237.143 86.64.145.143
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINDOWS\system32\drivers\KodakCCS.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SAVScan - Symantec Corporation - c:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
1 janv. 2007 à 19:09
1 janv. 2007 à 19:09
voila j'ai tout fait... mais quand je redémarre mon pc AVG anti-spyware m'indique qu'il détecte "logger.banker.axo" et "worm.banwor.nc"...
Regis59
Messages postés
21143
Date d'inscription
mardi 27 juin 2006
Statut
Contributeur sécurité
Dernière intervention
22 juin 2016
1 320
1 janv. 2007 à 21:19
1 janv. 2007 à 21:19
Re,
Ok, met moi le rapport de AVG
A+
Ok, met moi le rapport de AVG
A+
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
1 janv. 2007 à 21:45
1 janv. 2007 à 21:45
je viens de recommencer un scan pour te donner un rapport... avan celui la ça avait l'air d'aller mieux mais apparament c'est reparti en sens inverse : apparament il y a de nouveaux beaucoup d'objets infectés...
mymyt
Messages postés
24
Date d'inscription
samedi 30 décembre 2006
Statut
Membre
Dernière intervention
11 janvier 2007
1 janv. 2007 à 23:17
1 janv. 2007 à 23:17
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 23:06:06 01/01/2007
+ Résultat de l'analyse:
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\SVZ9EARN\svcpool[1].gif -> Logger.Banker.axo : Nettoyé.
C:\WINDOWS\__delete_on_reboot__s_v_c_p_o_o_l_._d_l_l_ -> Logger.Banker.axo : Nettoyé.
C:\Program Files\eMule\Incoming\MSN Messenger 7 203 Winks 76 Moods 143 Smiles + MCO Installer by Captain Cook\mspass.zip/mspass.exe -> Not-A-Virus.PSWTool.Win32.Messen.103 : Nettoyé.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\SVZ9EARN\XSecDLL[1].gif -> Worm.Banwor.nc : Nettoyé.
C:\WINDOWS\__delete_on_reboot__X_S_e_c_D_l_l_._d_l_l_ -> Worm.Banwor.nc : Nettoyé.
[1064] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1116] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1148] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1252] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1320] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1384] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1480] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1500] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1568] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1580] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1604] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1624] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1652] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1700] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1984] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2072] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2104] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2132] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2144] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2156] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2236] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2488] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2628] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[264] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2816] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2828] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2848] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2892] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2904] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3000] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3048] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3140] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3156] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3192] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3224] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3232] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3292] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3400] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3496] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3516] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3524] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3540] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3596] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3696] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3808] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3864] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3872] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3960] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3964] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[456] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[632] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[656] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[700] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[704] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[712] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[844] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[876] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[892] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[968] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
Fin du rapport
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 23:06:06 01/01/2007
+ Résultat de l'analyse:
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\SVZ9EARN\svcpool[1].gif -> Logger.Banker.axo : Nettoyé.
C:\WINDOWS\__delete_on_reboot__s_v_c_p_o_o_l_._d_l_l_ -> Logger.Banker.axo : Nettoyé.
C:\Program Files\eMule\Incoming\MSN Messenger 7 203 Winks 76 Moods 143 Smiles + MCO Installer by Captain Cook\mspass.zip/mspass.exe -> Not-A-Virus.PSWTool.Win32.Messen.103 : Nettoyé.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\SVZ9EARN\XSecDLL[1].gif -> Worm.Banwor.nc : Nettoyé.
C:\WINDOWS\__delete_on_reboot__X_S_e_c_D_l_l_._d_l_l_ -> Worm.Banwor.nc : Nettoyé.
[1064] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1116] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1148] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1252] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1320] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1384] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1480] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1500] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1568] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1580] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1604] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1624] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1652] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1700] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[1984] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2072] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2104] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2132] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2144] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2156] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2236] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2488] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2628] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[264] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2816] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2828] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2848] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2892] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[2904] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3000] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3048] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3140] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3156] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3192] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3224] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3232] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3292] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3400] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3496] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3516] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3524] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3540] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3596] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3696] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3808] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3864] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3872] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3960] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[3964] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[456] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[632] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[656] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[700] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[704] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[712] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[844] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[876] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[892] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
[968] C:\WINDOWS\XSecDll.dll -> Worm.Banwor.nc : Nettoyé.
Fin du rapport
Regis59
Messages postés
21143
Date d'inscription
mardi 27 juin 2006
Statut
Contributeur sécurité
Dernière intervention
22 juin 2016
1 320
2 janv. 2007 à 09:49
2 janv. 2007 à 09:49
Salut ;)
Rend toi sur ce site :
http://www.virustotal.com/xhtml/virustotal_en.html
Clik sur parcourir
Recherche ceci :
c:\windows\svcupdate.exe
puis
C:\windows\msnmsgr2.exe
Clik send et colle les rapports stp
A+
Rend toi sur ce site :
http://www.virustotal.com/xhtml/virustotal_en.html
Clik sur parcourir
Recherche ceci :
c:\windows\svcupdate.exe
puis
C:\windows\msnmsgr2.exe
Clik send et colle les rapports stp
A+